Securicom's security scanning service, SecuriScan, has been overhauled utilising the most advanced security assessment technology available on the market to deliver a much more comprehensive and accurate assessment of the security status of IT infrastructures.
SecuriScan provides crucial insight into vulnerabilities that could impact business performance, data security and regulatory compliance, equipping companies with meaningful, actionable intelligence to guide plans for remedying vulnerabilities in order to improve the organisation's IT security posture.
It is a Web-based, fully managed security scanning service that is offered on a subscription basis. Companies can request a once-off vulnerability assessment or subscribe to the ongoing security scanning service.
“The newly-refurbished service, built on the very best security scanning technology, offers companies the unabbreviated truth and more options. For instance, we now offer optional internal credentials-based scan if required by the customer for the once off as well as the subscription service. Another key difference is the option of a PCI (Payment Card Industry) audit scan, which we did not offer before,” says Dries Morris, Operations Director at Securicom.
SecuriScan uses Java-based architecture, allowing the system to connect to any ODBC and scan more databases at one time than most point solutions. It can scan for security, operational, and configuration vulnerabilities.
The technology offers fourth generation Web spidering to check for vulnerabilities on the server side. The system also provides coverage for rich Web code in AJAX deployments, and also scans for vulnerabilities such as DOM-based XSS and Cross-Site Request Forgery that are often missed by other assessment solutions.
Securicom has packaged this technology with its extensive IT security expertise to deliver a comprehensive security scanning and support service. The once-off audit is configured, scheduled and administered by an IT security (CISSP) professional from Securicom to ensure a comprehensive, objective and error-free assessment of the environment. The audit can be carried on an organisation's public-facing infrastructure, as well as the internal network.
Clients receive a comprehensive report on the findings of the audit. This is presented by a Securicom expert, who will suggest a plan of action and recommend solutions for remedying the vulnerabilities identified during the audit.
Companies subscribing to the ongoing security scanning service can perform their own regular vulnerability scans on the Internet-facing infrastructure. A dedicated scan engine can also be set up for regular audits of the internal (LAN) infrastructure. Subscribing clients can tap into Securicom's expertise at any time for support in addressing gaps detected during scheduled security scans.
They also have access to a dedicated, highly secure online management console (dashboard), which provides a snapshot of the security posture of the IT environment. Administrators can also configure and schedule security scans via this portal. SecuriScan features advanced reporting capabilities. Subscribing companies can schedule and generate a range of report types via their online portal, offering great flexibility in terms of organising and analysing the information gleaned from scheduled scans.
“With SecuriScan, companies are assured of getting the uncensored truth about how vulnerable their IT systems and information are. In this day and age, with new IT security threats emerging daily, this kind of truth must be known so that companies can stay a few steps ahead of fraudsters and cyber criminals,” concludes Morris.
Share
Securicom
Securicom is a specialist IT security management and consulting company offering an end-to-end range of fully-hosted and managed IT security services.
All Securicom's solutions utilise world-leading technologies, which are innovatively packaged together for their individual strengths and combined with Securicom's expertise, to deliver comprehensive protection against known and emerging threats.
Securicom's services include: advanced e-mail content filtering and management (e-Purifier); hosted e-mail archiving and retrieval (MailVault); e-mail branding (e-Branding); vulnerability scanning (Securiscan); perimeter protection (Managed Firewalls); optimised wide area data services (Managed WDS); remote access security (Securicom SSL VPN) and Optimised Remote Access Services; and WebSecure, which inspects, filters and cleans inbound and outbound Web traffic to combat browser-based threats such as bots, phishing, and other malicious active content - this product is only available in Namibia at the moment.
Securicom has offices in Johannesburg, Cape Town, Namibia and London, and offers its services in 10 other African countries.
For more information on Securicom, please visit http://www.securicom.co.za.
Editorial contacts